Cyber security

To help you get the most from your Jisc membership, we work to protect the Janet Network and connected organisations

Event: Early bird booking now open for Networkshop48, 15-17 April 2020

As technology becomes more complex and threats more sophisticated, it’s a challenge to keep your online environment and physical infrastructure secure.

Acting as a trusted partner and critical friend, we can help support you through these challenges with our range of services and in-house expertise.

Ten steps to cyber security

The National Cyber Security Centre’s (NCSC) ten steps to cyber security breaks down the task of defending your networks, systems and information into its essential components, providing advice on how to achieve the best possible security in each of these areas.

Working in partnership with the NCSC, we’ve matched our key member services to those ten steps.

Risk management regime

Defining and communicating your board’s information risk management regime is central to your organisation’s overall cyber security strategy.

BS31111 cyber risk and resilience audit and assessment is a top-down approach to managing cyber risk, helping leaders to understand risks, mitigate them and stay resilient.

User education and awareness

Users have a critical role to play in your organisation’s security. Awareness programmes and training help establish a security-conscious culture within your organisation.

Our phishing framework helps users safely experience what an attack might look like, along with related security training so they understand wider risks and know what to do if they suspect an issue.

Network security

Protect your network from attack, defend the perimeter and filter out unauthorised access and malicious content.

Penetration testing allows you to evaluate and improve the security of your system or network by simulating real-world attacks.

Secure configuration

Apply security patches and ensure the secure configuration of all systems is maintained.

Our vulnerability assessment and information service detects and manages internal and external vulnerabilities within your IT estate, helping you to manage your security risks, compliance and quality.

Malware prevention

Produce relevant policies and establish anti-malware defences across your organisation. 

Janet Network resolver uses independent analysis and research on malware and phishing attacks to adapt to emerging and evolving threats.

Incident management

Establish an incident response and disaster recovery capability. Test your incident management plans within your organisation and report criminal incidents to law enforcement agencies.

Our CSIRT safeguards your current and future computer security. By monitoring and resolving security incidents that occur on the Janet Network, we can share intelligence and advice to help keep your own networks safe.

Monitoring

Establish and implement a monitoring strategy and produce supporting policies. Analyse logs for unusual activity that could indicate an attack.

Splunk allows you to optimise your organisational performance, identify threats, and provide real-time insights into your infrastructure and services by automating the collection, indexing and alerting of your machine data.

Managing user privileges

Establish effective management processes and limit the number of privileged accounts. Monitor activity and audit logs.

Our range of web filtering and monitoring solutions enables you to apply age appropriate or role required web use policies with the most appropriate technology and toolset for your organisation.

Home and mobile working

Develop a mobile working policy and train staff to adhere to it. Apply secure baseline builds to all devices. Protect data in transit and at rest.

Our information security policies training course allows you to examine the origin of risks in behaviours, processes, physical, technical and environmental factors; and consider how policies can be used to mitigate and manage the risks.

Removable media controls

Removable media provide a common route for the introduction of malware and the accidental or deliberate export of sensitive data. Establish policies and practices which prevent this from happening within your organisation.

Cyber security assessment helps you evaluate, analyse and improve your cyber security – to meet audit and compliance needs.

Monitor your network activity

View DDoS mitigation data and traffic on your Janet Network connection through our cyber security portal.

Visit the cyber security portal